IMAGE_DLLCHARACTERISTICS_NX_COMPAT

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

IMAGE_FILE_RELOCS_STRIPPED

IMAGE_FILE_EXECUTABLE_IMAGE

IMAGE_FILE_32BIT_MACHINE

CryptBinaryToStringA

CryptStringToBinaryA

CryptDecodeObjectEx

StrStrIW

PathSkipRootW

StrPBrkA

StrCpyNW

PathFindFileNameW

StrStrA

PathMatchSpecW

StrCmpNA

StrSpnA

StrToInt64ExA

PathCombineW

StrToIntA

StrCmpNIW

StrChrA

StrCmpNIA

PathFindFileNameA

StrChrW

StrCmpNW

WNetOpenEnumW

WNetEnumResourceW

WNetCloseEnum

htons

inet_addr

htonl

shutdown

closesocket

gethostbyname

sendto

inet_ntoa

socket

WSAStartup

ExitProcess

RtlUnwind

LocalFree

lstrcmpiA

GetCommandLineW

CreateMutexW

SetErrorMode

GetCurrentProcess

GetProcAddress

GetCurrentThread

WaitForMultipleObjects

TerminateProcess

GetModuleFileNameW

GetCurrentThreadId

SetThreadPriority

GetTempPathW

GetLastError

OutputDebugStringA

SetProcessShutdownParameters

IsBadStringPtrA

SetFilePointer

FlushFileBuffers

MapViewOfFile

UnmapViewOfFile

CreateFileMappingW

IsBadWritePtr

IsBadReadPtr

IsBadStringPtrW

lstrcpyA

PeekNamedPipe

SystemTimeToFileTime

MoveFileExW

SetFileTime

lstrlenW

CreateFileW

CreateProcessA

GetSystemDirectoryA

GetLocalTime

CreatePipe

GetTickCount

ReadFile

FileTimeToSystemTime

OpenEventW

GetFileAttributesW

GetModuleHandleW

TlsAlloc

CreateThread

lstrcpyW

MulDiv

FileTimeToLocalFileTime

DeleteCriticalSection

GetFileTime

VirtualProtect

GetFileSizeEx

CreateEventW

EnterCriticalSection

MoveFileW

lstrlenA

SearchPathW

GetTempFileNameW

FindFirstFileW

GetNativeSystemInfo

GetDriveTypeW

GetLogicalDrives

VirtualFree

FindClose

QueryDosDeviceW

GetTimeFormatW

lstrcmpiW

lstrcatW

FindNextFileW

SetFileAttributesW

HeapReAlloc

HeapAlloc

HeapFree

HeapCreate

HeapValidate

SetLastError

GetProcessHeaps

HeapSetInformation

GetCurrentProcessId

CreateDirectoryW

GetComputerNameA

LeaveCriticalSection

Sleep

InitializeCriticalSection

WriteFile

VirtualAlloc

OutputDebugStringW

SetEvent

lstrcpynW

WaitForSingleObject

lstrcpynA

OpenProcess

SetFilePointerEx

MultiByteToWideChar

GetVersionExW

GetFileSize

WideCharToMultiByte

GetDateFormatW

GetHandleInformation

CloseHandle

CreateToolhelp32Snapshot

GetModuleHandleA

Process32NextW

GetSystemInfo

Process32FirstW

wsprintfW

GetForegroundWindow

RegisterClassExW

UnregisterClassW

DispatchMessageW

DefWindowProcW

RegisterClassW

FillRect

DrawTextA

GetDC

CreateWindowExW

SystemParametersInfoW

PeekMessageW

GetKeyboardLayoutList

GetSystemMetrics

CharLowerBuffA

TranslateMessage

wsprintfA

ReleaseDC

CryptAcquireContextW

CryptGetKeyParam

InitializeSecurityDescriptor

SetSecurityDescriptorDacl

RegQueryValueExW

CreateWellKnownSid

CheckTokenMembership

DuplicateToken

CryptGenRandom

CryptReleaseContext

AdjustTokenPrivileges

FreeSid

AllocateAndInitializeSid

LookupPrivilegeValueW

RegOpenKeyW

GetTokenInformation

OpenProcessToken

RegOpenKeyExW

RegCloseKey

CryptDestroyKey

CoCreateInstance

CoInitializeEx

CoUninitialize

CoInitialize

SHGetFolderPathW

CommandLineToArgvW

ShellExecuteW

ShellExecuteExW

SHChangeNotify

SetTextColor

DeleteDC

GetDeviceCaps

GetDIBits

SetBkColor

SetPixel

DeleteObject

SelectObject

CreateCompatibleDC

CreateCompatibleBitmap

CreateFontW

GetObjectW

GetStockObject

_alldiv

memcpy

isspace

_allmul

RtlDosPathNameToNtPathName_U

NtDeleteFile

RtlFreeUnicodeString

ZwQuerySystemInformation

tolower

memmove

ZwOpenProcess

memset

_aulldvrm

NtQueryVirtualMemory

VerQueryValueA

GetFileVersionInfoA

GetFileVersionInfoSizeA

IMAGE_SCN_CNT_CODE

IMAGE_SCN_MEM_EXECUTE

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ

IMAGE_SCN_MEM_WRITE

IMAGE_SCN_CNT_INITIALIZED_DATA

IMAGE_SCN_MEM_READ